​Cybersecurity researchers have disclosed a critical container escape vulnerability in the NVIDIA Container Toolkit that could pose a severe threat to managed AI cloud services. The vulnerability, tracked as CVE-2025-23266,… Read More »Critical NVIDIA Container Toolkit Flaw Allows Privilege Escalation on AI Cloud Services

​Google on Thursday revealed it’s pursuing legal action in New York federal court against 25 unnamed individuals or entities in China for allegedly operating BADBOX 2.0 botnet and residential proxy… Read More »Google Sues 25 Chinese Entities Over BADBOX 2.0 Botnet Affecting 10M Android Devices

​Threat actors are leveraging public GitHub repositories to host malicious payloads and distribute them via Amadey as part of a campaign observed in April 2025. “The MaaS [malware-as-a-service] operators used… Read More »Hackers Use GitHub Repositories to Host Amadey Malware and Data Stealers, Bypassing Filters

​Cybersecurity researchers have discovered a new campaign that exploits a known security flaw impacting Apache HTTP Server to deliver a cryptocurrency miner called Linuxsys. The vulnerability in question is CVE-2021-41773… Read More »Hackers Exploit Apache HTTP Server Flaw to Deploy Linuxsys Cryptocurrency Miner

​The modern-day threat landscape requires enterprise security teams to think and act beyond traditional cybersecurity measures that are purely passive and reactive, and in most cases, ineffective against emerging threats… Read More »CTEM vs ASM vs Vulnerability Management: What Security Leaders Need to Know in 2025

​An international operation coordinated by Europol has disrupted the infrastructure of a pro-Russian hacktivist group known as NoName057(16) that has been linked to a string of distributed denial-of-service (DDoS) attacks… Read More »Europol Disrupts NoName057(16) Hacktivist Group Linked to DDoS Attacks Against Ukraine

​The Taiwanese semiconductor industry has become the target of spear-phishing campaigns undertaken by three Chinese state-sponsored threat actors. “Targets of these campaigns ranged from organizations involved in the manufacturing, design,… Read More »Chinese Hackers Target Taiwan’s Semiconductor Sector with Cobalt Strike, Custom Backdoors

​Cisco has disclosed a new maximum-severity security vulnerability impacting Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) that could permit an attacker to execute arbitrary code on… Read More »Cisco Warns of Critical ISE Flaw Allowing Unauthenticated Attackers to Execute Root Code

​Cybersecurity researchers have flagged a new variant of a known malware loader called Matanbuchus that packs in significant features to enhance its stealth and evade detection. Matanbuchus is the name… Read More »Hackers Leverage Microsoft Teams to Spread Matanbuchus 3.0 Malware to Targeted Firms

​A threat activity cluster has been observed targeting fully-patched end-of-life SonicWall Secure Mobile Access (SMA) 100 series appliances as part of a campaign designed to drop a backdoor called OVERSTEP.… Read More »UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit